* Feature: Disable Implicit Signup for oauth implementations
- Added disableImplicitSignup option to social providers, generic oauth privders and sso plugin
- With disableImplicitSignup as true, signing in with a new email will fail
- Client may use requestSignUp as true to indicate they're explicitly asking for a sign up
- Added unit tests for social providers, generic oauth and sso plugin
* test: remove .only from OAuth2 test cases
* feat: add disableSignUp option for OAuth providers
* docs: add OAuth provider configuration options for signup control
* chore: fix api
* test: update OAuth test ports to 8081
---------
Co-authored-by: Bereket Engida <86073083+Bekacru@users.noreply.github.com>
Co-authored-by: Bereket Engida <bekacru@gmail.com>
* init
* wip
* wip
* wip
* wip
* wip
* wip
* wip
* wip
* wip
* feat(stripe): enable subscription support and update pricing plans
* feat(stripe): add Vitest configuration and initial tests for Stripe integration
* feat(stripe): implement setCookieToHeader function and update tests for customer creation and subscription handling
* feat(stripe): add seats support for subscriptions and update related endpoints
* feat(stripe): update schema to include unique referenceId, stripeSubscriptionId, and periodEnd fields
* wip docs
* docs
* docs: imporves
* fix(stripe): update webhook handlers to use correct subscription identification
* refactor(stripe): simplify customer management by storing Stripe customer ID directly on user
* chore(stripe): update package configuration and build setup
- Migrated from tsup to unbuild for build configuration
- Updated package.json with improved export and dependency management
- Added build configuration for better module support
- Removed tsup configuration file
* chore(stripe): update pnpm lockfile dependencies
- Moved `better-auth` from devDependencies to dependencies
- Added `zod` as a direct dependency
- Reorganized package dependencies in the lockfile
* feat(stripe): enhance subscription management and error handling
- Added toast error handling for subscription upgrades in the dashboard
- Updated Stripe price IDs for different plans
- Improved Stripe plugin documentation with beta warning and team subscription details
- Implemented intermediate redirect for checkout success to handle race conditions
- Added support for fetching and updating subscription status after checkout
- Fixed Next.js cookie handling and build configuration
* chore: update snapshot
* feat: teams in org
* conditional based expose team endpoint
* mod on adapter
* team org wip
* wip
* dynamic type inference
* add test
* feat: enhance organization adapter with default team creation and member timestamps
* feat: add maximum teams limit and prevent removal of last team
* refactor: remove outdated description from plugins documentation
* feat: add teams functionality with management and schema updates
* merge v1.2
* chore: cleanup
* fix(internal-adapter): safely handle lowercase email conversion
* feat(organization): enhance team and organization management tests and functionality
- Update organization and team tests with more comprehensive scenarios
- Modify team creation, invitation, and removal processes
- Improve access control and role management in organization tests
- Add support for multiple team and member management scenarios
* refactor(better-auth): remove unnecessary type extensions for User and Session
---------
Co-authored-by: Kinfe123 <kinfishtech@gmail.com>
* update: init command now can do plugins & DB generation
* fix: revert nextjs auth.ts file
* add: pacakge @clack/prompts for better CLI experience
* update: moved from prompts to clack/prompts
* add: functionality to hide logs coming from `getConfig`
* remove: hide logs functionality
* chore: remove unneeded import
* add: install dependencies feature
* add: functionality to update/install better-auth
* fix: install/upgrade better-auth deps
* add: spinner during version checking
* fix: nextCookies plugin import path
* fix: oidc plugin contents
* update: emoji-ify
* fix: mysql code
* refactor: logging/prompt style
* update: mysql use 1 ENV
* fix: msql, revert back to old code
* fix: mysql connectionUri, again
* fix: missing sqlite env
* fix: added back the plugins multiselect
* update: outro text
* add: ENV generation for `BETTER_AUTH_URL` & `BETTER_AUTH_SECRET`
* update: intro & outro text, plus some ENV default values
* remove: name from cli options
* fix: made index.ts's getPackageInfo not crash the program entirely if ENOENT
* update: prompt to get auth config dir if not auto found
* fix: create auth config file
* add: log to state the new file that's being created
* update: outro text
* fix: unneeded diff display
* add: auth-client creator
* fix: auth-client plugins are now grouped
* fix: auth-client import path bugs
* fix: invalid client plugins
* fix: oneTap client plugin contents
* update: allow getConfig to throw errors instead of logging
* fix: auth config error logging
* WIP: auth client code gen
* chore: linter
* update: now supports auth client generation
* WIP: grouped imports
* remove: functionality to update existing auth code
* add: functionality to update tsconfig
* fix: tsconfig not saving new updated values
* fix: handle missing .env files in init process
* update: made `no env file found` error message use `outro` for better logging experience
* fix: removed `ms` at the end as the `formatMilliseconds` fn already handles that
* update: move ENV code after plugins initialization
* chore: update pnpm lockfile and remove deprecated package note
* chore: lint
---------
Co-authored-by: Bereket Engida <bekacru@gmail.com>
* docs: sidebar updated for new category
* fix: icons to use fill version
* add: the rest of the pages for the database category
* update: MySQL done
* update: SQLite done. (and updated MySQL)
* update: PostgreSQL
* update: mssql done
* update: added callout to Kysley docs for each core dialect
* update: other relational databases page
* update: drizzle
* docs(fix): wrong words on drizzle page
* update: mongo docs
* update: prisma done
* update: community adapter page
* update: concept/database to refer to the documentation for each dialect in the docs category
* update: drizzle to mention the schema definitions
---------
Co-authored-by: Bereket Engida <86073083+Bekacru@users.noreply.github.com>
* feat: API-key plugin
* add: `deleteAllExpiredApiKeys` functionality
* fix: fetching sessions from headers
* update: types & create-api-key now checks for min & max expiresIn values
* tests: Started working on tests
* add: features
- added list functionality
- added min & max prefix length
- added min & max name length
- added metadata enable/disable option
- added `disableSessionForAPIKeys` option
- verify API key now checks for expiration & refills
- added regex to check prefix of api key
* fix: create-api-key's expiration using `/` instead of `*`
* update: schema `metadata` transforms invalid values as `null`
* fix: create-api-key metadata should go through transformation
* fix: missing metadata wouldn't have `'null'` as value
* update: error types
* fix: remove console.logs from verify
* fix: rate-limit not working
* fix: rate-limit plugin options types
* chore: remove logs
* update: removed `key` field from result apiKey type of the update-api-key endpoint
* fix: typo
* update: create & update if checks
- create now checks if custom expiration times are allowed
- update now allows name values & checks if name is within length range
- update now also checks for custom expiration times are allowed
* update(WIP): tests
* fix: added the missing error throw when there is no values to update
* fix: update-api-key checks expiresIn in days, not ms
- also updated create-api-key & update-api-key to have more detailed event logging
* fix: update api key's remaining count's min & max checks
- also added more detail to the events
* fix: update-api-key can now update refillInterval & refillAmount properly
* fix: metadata in update-api-key transforms between string & obj correctly
* add: all of the `update` tests
* update: get-api-key metadata is now obj instead of string
* add: listApiKeys functionality
* fix: get-session to use mock session based on header API keys
* update: tests to test against get-session, get-api-key, and list-api-key
* add: `start` field to show the first few characters of an API key
* fix: very silly mistake
* update: tests to validate `start` property
* update: create-api-key checks if properties are set from server & allows for custom rate-limit rules
- also updated tests to check against this
* update: verify-api-key to check if a row has the right user-id
- this also should speed up the DB process too. (I'm pretty sure)
* update: `delete-all-expired-api-keys` endpoint added & updated list-api-keys endpoint function name
* add: customAPIKeyValidator fn, and fixed verification `remaining` and `lastRefillAt` values updating DB incorrectly
* update: documentation
* add: rate-limiting enable/disable on a per-key level
* update: docs
* fix: correct expiration time units and improve error messages in API key handling
* fix: allow creating apiKeys by providing userId on the server
* fix: user userId instead of headers to differ server vs client calls on create api key
* wip
* fix: JSDoc comment
* fix: tests not passing due to invalid expiresIn value
Since the expiresIn got changed from `ms` to `sec`, this needed to be changed as well.
* wip
* fix(api-key): update tests and error messages for API key verification
* fix(api-key): update API key fixes
* refactor tests and remove events
* refactor(api-key): remove unused event handling and clean up type definitions
* add: minimum values to `create-api-key` numeric input options
* fix: remove `opts.events` in delete-api-key route
* refactor: all returning routes which can contain `key`
- more performant
- better typed
- cleaner code
:D
* update: added minimum values to update-api-key endpoint as well
* fix: removed `maximumRemaining` & `minimumRemaining` default values in `opts`
* docs: ready (unless I make minor adjustments later) 🫡
* fix(docs): links & invalid code examples
* fix: output transform of metadata to use ParseJSON
* fix: tests failing due to async metadata transform output
* fix: return types for verify-api-key endpoint
* fix: tests failing due to invalid expiresIn minimum value
* docs: reorder sidebar items for API Key
* wip
* docs(api-key): enhance documentation with permissions and usage details
- Updated API key documentation with comprehensive permissions explanation
- Added examples for setting default permissions, creating, verifying, and updating API keys with permissions
- Clarified API key creation, verification, and update processes
- Improved code examples and descriptions for better understanding
* chore: lint
* fix(docs): incorrect wording / explanation on refillInterval/refillAmount
* add(docs): missing permissions info in docs
---------
Co-authored-by: Bereket Engida <bekacru@gmail.com>
* add option to create a otp
* add description
* use tabs instead of spaces
* rename create to generate and replace all uses fo generateRandomString
* remove length
* fix type in forgot-password
* add generateOTP option and tests for email OTP functionality
---------
Co-authored-by: Bereket Engida <bekacru@gmail.com>
